Friday, 5 September 2025
26.9 C
Singapore
29.8 C
Thailand
19.3 C
Indonesia
28.2 C
Philippines

EU regulation blamed by Microsoft for CrowdStrike outage

Microsoft blames the EU for the CrowdStrike outage, which affected 8.5 million Windows devices due to a 2009 agreement with the European Commission.

Last Friday, Windows devices worldwide were unexpectedly taken offline. This chaos was triggered by a problematic update from cybersecurity giant CrowdStrike, causing widespread disruption. If you’re unfamiliar with the incident, you can catch up on the details in our previous article summarising the event.

The scale of the impact

With the dust settling, Microsoft has disclosed that approximately 8.5 million Windows devices were affected. This major outage can be traced back to an agreement between Microsoft and the European Commission in 2009.

In a statement to the Wall Street Journal, Microsoft detailed this agreement. In 2009, the European Commission worried that Microsoft might use its dominant market position to gain an unfair advantage. To address these concerns, Microsoft agreed to provide security software makers with the same level of access to Windows that it had.

The root cause

As a result of this agreement, today’s CrowdStrike Falcon security software operates as a kernel module, which gives it full system access. The kernel, often called “the heart of an operating system,” manages crucial system functions like memory, processes, and files. Therefore, when a faulty update is pushed out, the consequences can quickly escalate from bad to worse.

Interestingly, Macs were not affected by this outage. Apple ceased granting developers kernel-level access in 2020 with MacOS Catalina. This decision means Macs can experience a different type of failure. However, it’s worth noting that the European Commission is currently scrutinising Apple’s practices. The Commission has already compelled Apple to permit third-party App Stores under its Digital Markets Act, though it hasn’t yet forced Apple to change its kernel access policies.

Microsoft’s frustration

Microsoft appears to be frustrated. The company feels it was pulled into this predicament by factors beyond its control. The situation highlights the complex interplay between regulatory requirements and the practical realities of maintaining secure and functional software systems.

This incident underscores the challenges tech companies face when balancing compliance with regulatory demands and ensuring their systems remain robust and secure.

Hot this week

Banks urged to balance opportunities and risks of agentic AI

Moneythor warns that while agentic AI offers exponential potential for banks, the risks are just as significant without safeguards.

Microsoft AI launches first in-house models, MAI-Voice-1 and MAI-1-preview

Microsoft launches MAI-Voice-1 and MAI-1-preview, its first in-house AI models, focusing on advanced voice and text-based capabilities.

Meta reportedly explores using rival AI models to enhance its apps

Meta is exploring the use of AI models from Google and OpenAI to enhance its apps while advancing its own Llama AI technology.

Meta receives first online harms order in Singapore

Singapore issues its first online harms order to Meta under Ocha, as scam cases rise sharply and TikTok is added as a designated platform.

Apple tipped to launch lighter and cheaper Vision Air headset

Apple is reportedly developing a lighter, cheaper Vision Air headset, expected in 2027, with a price around S$2,650.

HubSpot unveils Loop Marketing playbook to drive growth in AI era

HubSpot launches Loop Marketing playbook and over 200 AI updates to help businesses grow in the era of AI search and zero-click results.

One in three Australian workers expose company data to AI platforms, Josys warns

Over a third of Australian workers upload sensitive data to AI tools, with Josys warning of rising risks from shadow AI and weak governance.

Singapore Polytechnic partners ESGpedia to strengthen sustainability efforts for local businesses

Singapore Polytechnic and ESGpedia partner to help Singapore businesses cut emissions, boost energy efficiency, and support the Green Plan 2030.

Veeam launches first software appliance for instant, secure data protection

Veeam has launched its first hardware-agnostic software appliance, offering instant, secure data protection with built-in resilience.

Related Articles

Popular Categories